Senior Information Security Officer | New York, NY

International Bank is seeking a Senior Information Security Officer to join their ISO team reporting to the CISO in New York City. The Senior ISO will be responsible for overseeing and reporting on the mitigation and management of IS risks including cybersecurity for the bank.

Senior Information Security Officer Responsibilities:

• Successfully implementing the Information Security / Cybersecurity strategy and objectives including strategies as directed by the CISO, to monitor metrics & reports and manage current and emerging risks
• Ability to engage with third parties for effective third-party management practices including 3rd party risk management
• Senior ISO will work with management in the lines of business to understand the flows of information, the risks to that information, and the best ways to protect the information
• Enhancing and updating Information Security Policy and supporting procedures and other ISO documentation
• Senior ISO will inform management and staff of information security and cybersecurity risks and the role of staff, in protecting information via training and presentations
• Monitoring and managing IT Risk Acceptances
• Participating in on-going ISO Team meetings and contribute ideas & improvements
• Proactively present emerging topics prior to them becoming issues and/or concerns
• Ensuring completeness & accuracy of ISO documentation and reports
• Monitoring and detection of third-party risks and/or issues (e.g. contract expiration)
• Contributing to a recurring annual risk assessment program by ensuring its accuracy and completeness
• Serving as ISO team project/task tracker coordinator/recorder
• Conducting and manage application security & risk assessments
• Successfully completing required periodic reporting and training by timely and accurately reporting them
• Assisting CISO with applicable projects and tasks supporting the above

Senior Information Security Officer Requirements:

• Bachelor’s degree; Advanced degree in computer science or information system related, or IT background is preferred
• 10+ years relevant experience
• Certifications: CISSP, CISA, and/or CISM desirable
• Strong knowledge of computer-based risk management systems relevant to the types of business activities to be conducted by the bank
• Strong knowledge of Cybersecurity Regulations and information security best practices
• Strong attention to detail and capability to identify issues and/or improvements
• Experienced with implementing guidelines such as FFIEC Handbooks, NIST Guidelines
• Excellent writing and communication skills (including reading and writing)
• Effective analytical and problem-solving skills
• Strong work ethic, positive attitude and a sense of responsibility

Salary range $160,000-$180,000 based on experience. Bonus eligible

SUBMIT YOUR RESUME